CVE-2026-30876

Published: Mar 16, 2026 Last Modified: Mar 16, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,3

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

Chamilo LMS is a learning management system. Prior to version 1.11.36, Chamilo is vulnerable to user enumeration with valid/invalid username. This issue has been patched in version 1.11.36.

204

Observable Response Discrepancy

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Access Control

Potential Impacts:

Read Application Data Bypass Protection Mechanism

Applicable Platforms

All platforms may be affected

View CWE Details

https://github.com/chamilo/chamilo-lms/releases/tag/v1.11.36

https://github.com/chamilo/chamilo-lms/security/advisories/…

https://github.com/chamilo/chamilo-lms/security/advisories/GHSA-cqr8-vvqp-4mp4

CVE-2026-30876

Description

Observable Response Discrepancy

Common Consequences

Applicable Platforms

Iscriviti alla newsletter